Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
Role- Assistant Vice President (GRC Head)-Infosec Team
Location- Gurgaon
Work Model- 5 days from Office
Company Description
Nykaa is a digitally native, consumer-tech company that offers a wide range of beauty, personal care and fashion products. Since its inception in 2012, Nykaa has disrupted the beauty retail market in India and captured the hearts of millions of customers. Besides offering engaging and educational content, we have diversified our offerings through other online platforms like Nykaa Fashion, Nykaa Man, and Superstore.
Key Words - NIST, Cert-In, ITGC Audit, InfoSec Risk Assessment, ISO 27001 implementation
Key Responsibilities
- Maintain a robust GRC & Data Protection program that aligns with organizational goals and objectives.
- Developing and implementing InfoSec policies, procedures, and standards
- To assess the security posture of the organization by using Cyber-Security Framework such as NIST
- Ensuring that information security risks are identified, assessed, and managed appropriately, and that appropriate controls are in place to mitigate these risks.
- Establishing and maintaining relationships with stakeholders across the organization, including senior leadership, business units, and other key stakeholders, to promote information security best practices and awareness.
- Leading the information security awareness and training programs for employees to ensure that they understand their roles and responsibilities in maintaining the security of information assets.
- Ensuring that the organization is compliant with relevant laws, regulations, and standards related to information security, such as IT Act, Cert-In, PCI, etc
- Lead the implementation of ISO 27001 Information Security Management System.
- Govern the third-party risk management program, ensuring comprehensive assessment, monitoring, and mitigation strategies to safeguard the organization
- Set governance rigor including regular updates for management, publishing dashboards including metrics for monitoring effectiveness of the organization's information security program
Qualification/Skill
- Graduate in Computer Science, Information Security
- Relevant certifications (e.g., CISSP, CISM, CISA) are a plus.
- 9+ years in Information Security with minimum 5 years of experience in GRC
- Experience in managing vendor risk management program
- Strong understanding of information security principles, risk management, and compliance requirements
- Experience with industry frameworks and standards (ISO 27001, NIST, etc.).
- Excellent communication and interpersonal skills, with the ability to collaborate with cross-functional teams.
- Demonstrated ability to lead and drive change within an organization.
- Strong analytical and problem-solving skills.
- Ability to handle confidential information
- Ethical, with the ability to remain impartial and report all noncompliance
- Organizational skills with attention to detail
Key Skills
Ranked by relevanceReady to apply?
Join Nykaa and take your career to the next level!
Application takes less than 5 minutes